$ rpki-client -vvf rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a3963303a3a2f33322d3332203d3e203633353930.roa File: 323430313a3963303a3a2f33322d3332203d3e203633353930.roa (raw, json) Hash identifier: ZKPdJe+SpTQrbBKIoaYGv5S+DuDFKJDZjdm+ay/zOKM= Subject key identifier: 03:B3:31:76:D4:6B:59:51:BE:C0:8F:F6:1D:7C:5A:D5:77:70:DE:5A Certificate issuer: /CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Certificate serial: 662B0A7976BBCD0F4A1266B90296C2640329A0DC Authority key identifier: 22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 Authority info access: rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject info access: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a3963303a3a2f33322d3332203d3e203633353930.roa Signing time: Thu 23 Apr 2026 07:33:07 +0000 ROA not before: Thu 23 Apr 2026 07:28:07 +0000 ROA not after: Thu 22 Apr 2027 07:33:07 +0000 asID: 63590 IP address blocks: 2401:9c0::/32 maxlen: 32 Validation: OK Signature path: rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.mft rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.crl rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/A56E872A403E7B9CEB9431A08F540401D2FBD710.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/pW6HKkA-e5zrlDGgj1QEAdL71xA.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:49:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:2b:0a:79:76:bb:cd:0f:4a:12:66:b9:02:96:c2:64:03:29:a0:dc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2265C2E81BCCCC4E922AB11C581ADE31BF27B202 Validity Not Before: Apr 23 07:28:07 2026 GMT Not After : Apr 22 07:33:07 2027 GMT Subject: CN=03B33176D46B5951BEC08FF61D7C5AD57770DE5A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:06:85:91:9c:85:58:b8:d2:b0:de:d5:4e:ee: 7f:1c:6a:dd:09:b8:82:34:97:bb:07:bf:77:fd:15: c8:90:45:cf:e7:e9:e3:b0:7d:70:07:25:db:9f:6f: be:01:23:ba:bc:9f:d4:c9:da:f4:8c:7c:2c:64:cb: b6:9d:91:f0:ea:24:af:54:ef:4c:c6:f9:29:5c:a0: 74:fc:3d:3c:b2:cd:e2:56:4e:03:6c:da:87:e6:bf: 1b:68:1e:3c:99:10:05:c2:bb:f8:7c:40:3d:3a:95: f5:32:9b:bf:3b:82:3a:32:89:d9:59:ba:36:b3:2c: 28:7c:7f:82:56:ad:68:0f:dd:0b:84:ba:1b:f0:bd: 7d:47:29:1d:97:99:c0:7b:18:74:2a:b3:12:e3:f1: c5:ce:28:10:9e:ee:ac:89:ce:10:e5:bb:6a:13:e8: cb:d8:05:ff:65:b3:90:a6:e5:69:dd:e1:6f:5a:b7: 12:87:f3:c9:ea:0e:67:37:75:26:6f:9e:02:b9:bb: 28:9f:67:1c:f8:84:0d:f2:9b:bb:d5:16:84:fc:83: 2b:05:68:3d:13:59:ca:b5:8e:12:20:4f:33:86:c3: e9:06:3f:33:dd:20:dc:d2:2f:45:96:08:4a:0e:df: 10:75:29:a1:1b:ec:af:4c:5a:f1:a7:65:07:d6:ee: 46:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:B3:31:76:D4:6B:59:51:BE:C0:8F:F6:1D:7C:5A:D5:77:70:DE:5A X509v3 Authority Key Identifier: keyid:22:65:C2:E8:1B:CC:CC:4E:92:2A:B1:1C:58:1A:DE:31:BF:27:B2:02 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rps.cnnic.cn/repo/A1055390775090675715/1/2265C2E81BCCCC4E922AB11C581ADE31BF27B202.cer Subject Information Access: Signed Object - URI:rsync://rpki-rps.cnnic.cn/repo/A1089062140922298370/0/323430313a3963303a3a2f33322d3332203d3e203633353930.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2401:9c0::/32 Signature Algorithm: sha256WithRSAEncryption 81:9a:03:be:44:d4:b9:d1:83:9b:3e:04:91:47:04:92:c7:48: e9:ed:a5:74:db:60:96:6a:68:87:85:d9:24:00:f8:62:51:95: b9:19:4e:7d:af:3d:4f:59:b2:a3:fa:17:c0:57:ad:c8:f3:a6: 3f:d4:66:7d:78:d1:16:18:b7:d6:4f:d0:14:8a:92:81:45:68: 85:e5:5d:1f:4f:67:16:7c:01:7a:89:e0:9e:08:d0:d3:9b:73: d1:68:1d:21:83:8e:d4:9a:79:f7:1a:11:1b:15:e7:68:3f:c2: dc:40:f4:8a:18:e3:a4:c8:03:e9:d5:4d:49:ca:0e:3e:5a:25: ef:00:f3:c5:be:9b:45:48:fd:2c:97:54:2f:38:7f:40:eb:9b: ce:d8:f7:35:a1:57:f6:7b:ae:07:fc:92:69:d2:bb:17:74:8e: 6a:01:d9:b9:99:f9:5b:36:41:84:41:d4:38:ad:c9:82:4f:b1: 40:11:42:dd:d2:7e:f8:30:94:5c:d1:93:a4:5a:75:6e:17:28: 28:40:d0:64:74:7d:2e:e4:c1:6a:c0:44:1c:41:bc:d6:48:d2: 2c:17:ae:3c:de:b9:fd:d8:2f:0b:88:bc:a1:1b:6c:dd:ea:f1: 9c:d1:8a:5f:e9:4b:61:30:ba:39:31:21:85:91:7c:d5:20:b0: 45:41:72:51 -----BEGIN CERTIFICATE----- MIIFBjCCA+6gAwIBAgIUZisKeXa7zQ9KEma5ApbCZAMpoNwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFC RjI3QjIwMjAeFw0yNjA0MjMwNzI4MDdaFw0yNzA0MjIwNzMzMDdaMDMxMTAvBgNV BAMTKDAzQjMzMTc2RDQ2QjU5NTFCRUMwOEZGNjFEN0M1QUQ1Nzc3MERFNUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRBoWRnIVYuNKw3tVO7n8cat0J uII0l7sHv3f9FciQRc/n6eOwfXAHJdufb74BI7q8n9TJ2vSMfCxky7adkfDqJK9U 70zG+SlcoHT8PTyyzeJWTgNs2ofmvxtoHjyZEAXCu/h8QD06lfUym787gjoyidlZ ujazLCh8f4JWrWgP3QuEuhvwvX1HKR2XmcB7GHQqsxLj8cXOKBCe7qyJzhDlu2oT 6MvYBf9ls5Cm5Wnd4W9atxKH88nqDmc3dSZvngK5uyifZxz4hA3ym7vVFoT8gysF aD0TWcq1jhIgTzOGw+kGPzPdINzSL0WWCEoO3xB1KaEb7K9MWvGnZQfW7kYNAgMB AAGjggIQMIICDDAdBgNVHQ4EFgQUA7MxdtRrWVG+wI/2HXxa1Xdw3lowHwYDVR0j BBgwFoAUImXC6BvMzE6SKrEcWBreMb8nsgIwDgYDVR0PAQH/BAQDAgeAMHMGA1Ud HwRsMGowaKBmoGSGYnJzeW5jOi8vcnBraS1ycHMuY25uaWMuY24vcmVwby9BMTA4 OTA2MjE0MDkyMjI5ODM3MC8wLzIyNjVDMkU4MUJDQ0NDNEU5MjJBQjExQzU4MUFE RTMxQkYyN0IyMDIuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5 bmM6Ly9ycGtpLXJwcy5jbm5pYy5jbi9yZXBvL0ExMDU1MzkwNzc1MDkwNjc1NzE1 LzEvMjI2NUMyRTgxQkNDQ0M0RTkyMkFCMTFDNTgxQURFMzFCRjI3QjIwMi5jZXIw gYgGCCsGAQUFBwELBHwwejB4BggrBgEFBQcwC4ZscnN5bmM6Ly9ycGtpLXJwcy5j bm5pYy5jbi9yZXBvL0ExMDg5MDYyMTQwOTIyMjk4MzcwLzAvMzIzNDMwMzEzYTM5 NjMzMDNhM2EyZjMzMzIyZDMzMzIyMDNkM2UyMDM2MzMzNTM5MzAucm9hMBgGA1Ud IAEB/wQOMAwwCgYIKwYBBQUHDgIwIAYIKwYBBQUHAQcBAf8EETAPMA0EAgACMAcD BQAkAQnAMA0GCSqGSIb3DQEBCwUAA4IBAQCBmgO+RNS50YObPgSRRwSSx0jp7aV0 22CWamiHhdkkAPhiUZW5GU59rz1PWbKj+hfAV63I86Y/1GZ9eNEWGLfWT9AUipKB RWiF5V0fT2cWfAF6ieCeCNDTm3PRaB0hg47Umnn3GhEbFedoP8LcQPSKGOOkyAPp 1U1Jyg4+WiXvAPPFvptFSP0sl1QvOH9A65vO2Pc1oVf2e64H/JJp0rsXdI5qAdm5 mflbNkGEQdQ4rcmCT7FAEULd0n74MJRc0ZOkWnVuFygoQNBkdH0u5MFqwEQcQbzW SNIsF6483rn92C8LiLyhG2zd6vGc0Ypf6UthMLo5MSGFkXzVILBFQXJR -----END CERTIFICATE-----Generated at Wed May 13 20:20:26 2026 by rpki-client